Yuval Avrahami's repositories
rbac-police
Personal fork with a few bug fixes
can-ctr-escape-cve-2022-0492
Test whether a container environment is vulnerable to container escapes via CVE-2022-0492
download_google_drive
Download files from Google Drive using Python 2 or Python 3
advisory-database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
coredns-enum
Discover K8s Services & Pods through DNS Records in CoreDNS
csp_security_mistakes
Cloud service provider security mistakes
hugo-PaperMod
A fast, clean, responsive Hugo theme.
k8s-mutate-webhook
A playground to build a very crude k8s mutating webhook in Go
kubetcd
Post-exploit a compromised etcd, gain persistence and remote shell to nodes.
LiveOverflow-cloudshell-poc
Cloudshell proof of concept for LiveOverflow
morestrings
Go module
msft-kata
Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs. https://katacontainers.io/
prisma-cloud-compute-sample-code
Example scripts, snippets, and other documents related to Prisma Cloud Compute
RunC-CVE-2019-5736
CVE-2019-5736 POCs
sa-hunter
Correlates serviceaccounts and pods to the permissions granted to them via rolebindings and clusterrolesbindings.
sample-code
Sample code for Prisma Cloud Compute (formerly Twistlock)
splash
Splash Pseudo Lambda Shell
website
Kubernetes website and documentation repo: